[Git][security-tracker-team/security-tracker][master] dogecoin: reference 3 CVEs from common bitcoin codebase

Mon Jun 19 13:58:28 BST 2023


Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e65d3c6e by Sylvain Beucler at 2023-06-19T14:52:46+02:00
dogecoin: reference 3 CVEs from common bitcoin codebase

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -167445,6 +167445,8 @@ CVE-2021-23141
 	RESERVED
 CVE-2021-3401 (Bitcoin Core before 0.19.0 might allow remote attackers to execute arb ...)
 	- bitcoin 0.20.1~dfsg-1
+	- dogecoin 1.14.6-1
+	NOTE: https://github.com/dogecoin/dogecoin/issues/2665
 CVE-2021-3400
 	RESERVED
 CVE-2021-26689 (An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, ...)
@@ -276066,6 +276068,8 @@ CVE-2019-15948 (Texas Instruments CC256x and WL18xx dual-mode Bluetooth controll
 	NOT-FOR-US: Texas Instruments CC256x and WL18xx dual-mode Bluetooth controller devices
 CVE-2019-15947 (In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted  ...)
 	- bitcoin 0.20.1~dfsg-1 (bug #939608)
+	- dogecoin 1.14.6-1
+	NOTE: https://github.com/dogecoin/dogecoin/issues/2672
 CVE-2019-15946 (OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Octet ...)
 	{DLA-2832-1 DLA-1916-1}
 	- opensc 0.20.0-1 (bug #939669)
@@ -329998,8 +330002,10 @@ CVE-2018-17145 (Bitcoin Core 0.16.x before 0.16.2 and Bitcoin Knots 0.16.x befor
 	NOTE: https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures#CVE-2018-17145
 CVE-2018-17144 (Bitcoin Core 0.14.x before 0.14.3, 0.15.x before 0.15.2, and 0.16.x be ...)
 	- bitcoin 0.16.3~dfsg-1
+	- dogecoin 1.14.0-1
 	- litecoin 0.16.3-1
 	NOTE: https://en.bitcoin.it/wiki/Common_Vulnerabilities_and_Exposures#CVE-2018-17144
+	NOTE: https://github.com/dogecoin/dogecoin/pull/1526
 CVE-2018-17143 (The html package (aka x/net/html) through 2018-09-17 in Go mishandles  ...)
 	- golang-golang-x-net-dev <not-affected> (Vulnerable code introduced later)
 	- golang-go.net-dev <not-affected> (Vulnerable code introduced later)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e65d3c6e568cc460b66cba396715e99687c95148

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e65d3c6e568cc460b66cba396715e99687c95148
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230619/67bdb9bc/attachment.htm>
